You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If a user tries to login with his username (ex. jsmith)
or by getent command (getent passwd jsmith),
sssd creates a ldap query with "uid=username".
from sssd logs:
[sssd[be[default]]] [sdap_get_generic_ext_step] (0x0400): calling
ldap_search_ext with [(&(uid=jsmith)(objectclass=posixAccount))] ...
If it would be possible to change the uid to something configurable,
like "mail:" a user could use his email address to login.
Everything else Unix-username, uidnumber, gidnumber, homedir, gecos ....
should still be processed, like searching for a user entry with uid=.
Just a modification how the user entry should be fetched from a ldap server.
Maybe with a conf option
lookup_username_attr mail
#default uid
With a second "domain section" a user could use his unix accountname and his email
to login.
Cloned from Pagure issue: https://pagure.io/SSSD/sssd/issue/2016
If a user tries to login with his username (ex. jsmith)
or by getent command (getent passwd jsmith),
sssd creates a ldap query with "uid=username".
from sssd logs:
[sssd[be[default]]] [sdap_get_generic_ext_step] (0x0400): calling
ldap_search_ext with [(&(uid=jsmith)(objectclass=posixAccount))] ...
If it would be possible to change the uid to something configurable,
like "mail:" a user could use his email address to login.
Everything else Unix-username, uidnumber, gidnumber, homedir, gecos ....
should still be processed, like searching for a user entry with uid=.
Just a modification how the user entry should be fetched from a ldap server.
Maybe with a conf option
lookup_username_attr mail
#default uid
With a second "domain section" a user could use his unix accountname and his email
to login.
Comments
Comment from dpal at 2013-07-11 16:04:35
Fields changed
milestone: NEEDS_TRIAGE => SSSD 1.13 beta
rhbz: => todo
Comment from dpal at 2013-09-06 22:02:17
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=1004108 (RHEL RFE)
rhbz: todo => [https://bugzilla.redhat.com/show_bug.cgi?id=1004108 1004108]
Comment from jhrozek at 2015-07-28 20:08:00
Fields changed
mark: => 0
priority: major => minor
sensitive: => 0
Comment from jhrozek at 2015-10-11 22:16:20
It's already possible to remap attributes and log in with UPNs, therefore I'm postponing this ticket.
milestone: SSSD 1.14 beta => SSSD Deferred
Comment from jhrozek at 2016-11-17 11:58:12
Login with mail and overriding attributes is already possible, therefore we should close this ticekt.
review: 0 => 1
Comment from jhrozek at 2016-11-25 10:54:27
Fields changed
resolution: => worksforme
status: new => closed
Comment from msoysal at 2017-02-24 15:04:23
Metadata Update from @msoysal:
The text was updated successfully, but these errors were encountered: